151 to 175 of 226 SIEM Jobs

threats, threat actors, and the tactics and techniques adopted. Proven experience with programming - Python, Rust, C++ or other major languages Knowledge of SecOps tooling (SIEM, SOAR, TI). more »

Detection Engineer to join their global cyber defence team basaed in the UK but with the option to work fully remote. Key skills needed: SIEM, IDS/IPS, Firewalls and antivirus software; full DevSecOps skillset with demonstrable skills in building threat detection systems in the cloud; scripting skillset in Python more »

monitoring Identity and Access Management and Privileged Access Management platforms (including Google Workspace and Entra ID) Allowlisting (application control) Endpoint Detection and Response and SIEM Issue and Project Tracking (Jira) Cyber Asset and Attack Surface Management Scripting languages such as Bash and PowerShell You'll be a successful Digital Experience more »

to-day supervising and leading the technical resources in a SOC type environment, including those new into their roles Knowledge and experience of relevant SIEM tools and technology, on premise and/or cloud hosted and ideally Elastic but could also include Splunk, qRadar or similar Able to lead investigations more »

unique security software & service offering then this may be for you. The company: 📍Boutique cyber security business based out of Northampton. 📍Well known for SIEM security and Secure Data Access security. 📍Flex working for all employees. Must attend the Northampton HQ once per week. 📍Circa 30 employees with big growth more »

on bids and/or large and complex changes. Solid understanding of a variety of network and routing protocols. Experience with Network Management or SIEM designs, tooling or support. Demonstrable troubleshooting skills and approach to defect resolution. SDWAN experience is advantageous. Your benefits: 25 Days annual leave plus public holidays more »

Senior SOC Analyst, SIEM - Cloud based: Sentinel/ManageEngine Log360/QRadar, Splunk, Incident Response Management, Hybrid London 1-2 days per week. We are hiring a Senior SOC Analyst to help build a new SOC function. The role will initially be very hands on, responsible for monitoring and triaging … focus on small client environments and the corporate sector, this role oversees security monitoring for the company delivered solutions and ensures the integration of SIEM platforms into a new Private Cloud solution. As the first recruit into the SOC Team, you will collaborate with management to establish and expand the … service according to business requirements. Main Duties and Responsibilities Monitoring & Investigation: Monitor SIEM tools to assure high security levels, analyse potential security incidents, conduct real-time analysis, support investigations, and document findings to improve incident response procedures. Response: Lead and coordinate incident response activities, develop and maintain incident response plans more »

with ITIL4 practices. Deliver concise progress reports and compelling presentations to clients. Serve as a subject matter expert in Security Information and Event Management (SIEM), providing recommendations for product enhancements. Conduct thorough analysis of SIEM outputs, promptly identifying and escalating any incidents or breaches. Provide assurance support to team members … Information Systems Security Professional (CISSP). Experience in Government/Ministry of Defence settings is advantageous. Proficiency in implementing ITIL processes. Strong expertise in SIEM operations. Competence in Risk Management and NIST Cyber Security Controls. Client-facing experience with exceptional stakeholder management skills. Ability to thrive in a fast-paced more »

with the ability to create, update and maintain network diagrams. As Senior Cyber Security Specialist, you will have a detailed knowledge of security products, SIEM, AV, security gateways, firewalls, load-balancers, ACLs, routing and switching. You should have a strong understanding of common IT protocols, infrastructure and systems. You will … have extensive experience of technologies including but not limited to Firewalls, IPS & IDS, Active Directory, Windows Server, Linux, AWS, Vulnerability management and SIEM, DRM. We would expect you to have a familiarity with industry security standards such as NIST, Cyber Essentials, ISO27001 and GDPR. You should also have experience with more »

with the ability to create, update and maintain network diagrams. As Senior Cyber Security Specialist, you will have a detailed knowledge of security products, SIEM, AV, security gateways, firewalls, load-balancers, ACLs, routing and switching. You should have a strong understanding of common IT protocols, infrastructure and systems. You will … have extensive experience of technologies including but not limited to Firewalls, IPS & IDS, Active Directory, Windows Server, Linux, AWS, Vulnerability management and SIEM, DRM. We would expect you to have a familiarity with industry security standards such as NIST, Cyber Essentials, ISO27001 and GDPR. You should also have experience with more »

digital assets and maintaining the integrity, confidentiality, and availability of our information systems. Your expertise in Microsoft technologies and experience with SIEM (Security Information and Event Management) tools will be instrumental in identifying and mitigating security threats proactively. Responsibilities: 1. Security Monitoring and Incident Response: - Utilize SIEM tools such as … s degree in Computer Science, Information Technology, or a related field. - Proven experience as an IT Security Analyst, with a focus on Microsoft technologies and SIEM tools. - In-depth knowledge of security principles, protocols, and technologies, including firewalls, intrusion detection/prevention systems, and endpoint security solutions. - Hands-on experience … with Microsoft Azure, Active Directory, and related security features. - Proficiency in configuring and managing SIEM solutions, such as Microsoft Sentinel, Splunk, or IBM QRadar. - Strong analytical and problem-solving skills, with the ability to prioritise and manage multiple tasks in a fast-paced environment. - Relevant certifications such as CISSP, CISM more »

5+ years commercial experience with the following technologies/systems: Firewall/NIDS/DLP/Anti-Virus/Identity Awareness/URL Filtering SIEM Enterprise Desktop and Server Anti-Virus/Malware and endpoint protection technologies Vulnerability Security Scanning Microsoft Windows Server family of products. Operational experience of PCI … Good understanding of TCP/IP Identity and access management systems Active Directory, GPO Configuration Citrix/VMWare Experience of managing and developing a SIEM system, and feeding events into a SOC in order to identify and alert on security incidents Understanding of security issues and ability to allocate work more »

commercial experience with the following technologies/systems: Check Point Firewall/NIDS/DLP/Anti-Virus/Identity Awareness/URL Filtering SIEM/Splunk Enterprise Desktop and Server Anti-Virus/Malware and endpoint protection technologies Vulnerability Security Scanning e.g. Nessus Microsoft Windows Server family of products. … Good understanding of TCP/IP Identity and access management systems Active Directory, GPO Configuration Citrix/VMWare Experience of managing and developing a SIEM system, and feeding events into a SOC in order to identify and alert on security incidents Understanding of security issues and ability to allocate work more »

commercial experience with the following technologies/systems: Check Point Firewall/NIDS/DLP/Anti-Virus/Identity Awareness/URL Filtering SIEM/Splunk Enterprise Desktop and Server Anti-Virus/Malware and endpoint protection technologies Vulnerability Security Scanning e.g. Nessus Microsoft Windows Server family of products. … of TCP/IP Identity and access management systems Active Directory, GPO Configuration Citrix/VMWare Desirable Experience: Experience of managing and developing a SIEM system, and feeding events into a SOC in order to identify and alert on security incidents Understanding of security issues and ability to allocate work more »

Centre/SOC Analyst London/WFH to £65k Are you an experienced Security Operations Centre/SOC Analyst with a strong knowledge of SIEM? You could be progressing you career in an impactful role at a tech company that provide cyber security products to a range of finance, government … role in ensuring the security and resilience of both internal and client based information systems. You'll provide subject matter expertise, selecting the appropriate SIEM platform and then once it's embedded ensuring BAU and leading security monitoring, carrying out indepth investigations and actively participating in incident response. This is … week. Requirements: You're an experienced SOC Analyst with the ability to troubleshoot and resolve complex security issues You have a strong understanding of SIEM systems e.g. IBM QRadar, FortiSIEM, Splunk, Sentinel and are able to recommend the right tool for the job You have a good understanding of IT more »

hardware. Support Junior Analysts in managing SOC systems. Demonstrate previous experience with Enterprise ICS/network architectures and technologies. Possess experience and knowledge of SIEM solutions, including use case identification, creation, deployment, and tuning. Serve as a mentor/coach to junior analysts. Your Profile: Previous experience utilizing the MITRE … C2M2. Excellent communication skills. Experience in writing Defence/Government documentation. Desirable Qualifications: Broad Spectrum Cyber Course (SANS SEC401 or SEC501 or equivalent). SIEM Design, Architecture, and Analyst Course (SANS SEC455 or SEC555 or equivalent). Advanced Analyst Course (SANS SEC503 or equivalent). Benefits: Join a rapidly expanding more »

direction in all aspects of security operations. Develop and implement robust security strategies and policies to protect company assets and data. Configure and maintain SIEM tools to monitor and analyze security events across the organization. Collaborate with DEVOPS teams to ensure security best practices are integrated into the development and … improvement. Qualifications: Bachelor’s degree in Computer Science, Information Security, or related field (or equivalent experience). Extensive hands-on experience configuring and managing SIEM tools (e.g., Splunk, ArcSight, QRadar). Proficiency in working within a DEVOPS environment, with strong knowledge of AWS services and security best practices. Proven experience more »

direction in all aspects of security operations. Develop and implement robust security strategies and policies to protect company assets and data. Configure and maintain SIEM tools to monitor and analyze security events across the organization. Collaborate with DEVOPS teams to ensure security best practices are integrated into the development and … improvement. Qualifications: Bachelor’s degree in Computer Science, Information Security, or related field (or equivalent experience). Extensive hands-on experience configuring and managing SIEM tools (e.g., Splunk, ArcSight, QRadar). Proficiency in working within a DEVOPS environment, with strong knowledge of AWS services and security best practices. Proven experience more »

incidents for our client base, using such tools as Microsoft Sentinel and Manage Engine Log 360. The role will also involve standing up new SIEM tools to support multiple environments, an in-depth understanding of configuring and tuning tools, as well as monitoring, is a must. This is a chance … must. Job Purpose: The main purpose of this role is to bring stability and a standard approach to security monitoring across a number of SIEM tools for multiple environments, thus ensuring a strong security posture is maintained. Primarily the role will be concerned with taking on all security monitoring for … a handful of small client environments and the corporate environment. The role will also be accountable for ensuring a SIEM platform is embedded as a BAU service for a new Private Cloud solution. As a Senior SOC Analyst you will play a pivotal role in ensuring the security and resilience more »

related products and services to ensure that CLS is equipped with appropriate industry best tools and solutions Operational Operate and maintain controls related to SIEM, DLP, Vulnerability Management, DLP, Cyber Threat Intelligence, Endpoint Protection, etc with an emphasis on cloud deployments and implementations. Conduct IT Security risk assessments for all … team to help design, implement and maintain security Prepare for, identify (hunt) and remediate cyber threats Operate and maintain IT Security controls related to SIEM, DLP, Vulnerability Management, Cyber Threat Intelligence, DLP, Endpoint Protection, etc. Participate in an on-call rotation to act as an escalation point for events requiring … business audiences) Excellent time management and organizational skills combined with technical IT Security acumen Expert knowledge of Firewalls, TCP/IP, IPS, DLP, proxies, SIEM, & Endpoint Protection software Financial and/or Banking industry experience preferred What we offer Holiday - UK/Asia: 25 holiday days and 3 ‘life days more »

technical upskilling program, paid/sponsored certifications, leadership development training opportunities and tuition reimbursement programs. Leidos is looking for a Sr. SIEM (Security Information and Event Management) Engineer/Splunk Certified Admin to join a high performing agile team using the Scaled Agile Framework (SAFe) methodology to support a large … the various Splunk core components. Experience configuring and deploying data collection for a variety of operating systems and networking platforms. Experience creating Dashboards and Analytics within SIEM tools. Experience working with monitoring systems supporting auditing, incident response, and system health. Understanding of networking components and devices, ports, protocols, and basic … data solutions. Preferred Qualifications: Network Security Operations Center (SOC) experience. Experience and talent in data visualization. Experience creating workflows for Incident Response within a SIEM Tool. Security+ Certification. GIAC Certified Incident Handler Certification. GIAC Cyber Threat Intelligence Certification. Cybersecurity certifications. Formal SIEM training. Experience working on an Agile team/ more »

experienced individual will know what the role entails, but some key points to be considered: - Demonstrable experience of managing security solutions (secure Code Scanning, SIEM, IPS, IDS, Vulnerability Scanning, Penetration Testing,) directly, or through an MSSP, in a cloud-based environment. - Knowledge of security compliance standards relevant to the SaaS … such as PCI, GDPR, ISO 27001, SOC2, NIST - Skills in leveraging application monitoring tools- AWS monitoring/alert tools (CloudTrail, GuardDuty), Qualys tools and SIEM experience, to detect and respond to security events/incidents. - Industry certifications such as CISSP, CISM, CEH, ECSA, LPT, OSCP, AWS certified security, or equivalent more »

experienced individual will know what the role entails, but some key points to be considered: - Demonstrable experience of managing security solutions (secure Code Scanning, SIEM, IPS, IDS, Vulnerability Scanning, Penetration Testing,) directly, or through an MSSP, in a cloud-based environment. - Knowledge of security compliance standards relevant to the SaaS … such as PCI, GDPR, ISO 27001, SOC2, NIST - Skills in leveraging application monitoring tools- AWS monitoring/alert tools (CloudTrail, GuardDuty), Qualys tools and SIEM experience, to detect and respond to security events/incidents. - Industry certifications such as CISSP, CISM, CEH, ECSA, LPT, OSCP, AWS certified security, or equivalent more »

to join our team on a contract basis. The ideal candidate will have a strong background in Cyber Analysis, with expertise in SOC environments, SIEM & Incident Management, Vulnerability Management, and Endpoints or Threat Analysis. Key Responsibilities: - Conduct thorough Cyber Analysis to identify and respond to security incidents. - Monitor and manage … Security Operations Center (SOC) environments to ensure the integrity and security of our systems. - Utilize SIEM tools for real-time event correlation and incident detection. - Effectively handle Incident Management, responding promptly to security alerts and breaches. - Implement and oversee Vulnerability Management processes to identify and mitigate potential security risks. - Conduct … and threats to enhance overall security posture. Qualifications: - Proven experience in Cyber Analysis and Security Operations. - Proficiency in working with SOC environments and utilizing SIEM tools. - Strong knowledge of Incident Management processes and procedures. - Experience in Vulnerability Management to address potential security vulnerabilities. - Expertise in Endpoints or Threat Analysis to more »

our client, you will play a crucial role in implementing and managing their cybersecurity infrastructure. Your responsibilities will include: - Implementing and managing Azure Sentinel SIEM for threat detection, incident response, and security monitoring. - Configuring and maintaining Microsoft Defender for endpoint protection and threat detection. - Developing and maintaining KQL (Kusto Query … junior members of the security team. Requirements: - Proven experience working as a Cyber Security Engineer or similar role. - In-depth knowledge of Azure Sentinel SIEM, Microsoft Defender, and KQL scripting. - One of the following certifications: AZ-500 (Microsoft Azure Security Technologies) or SC-200 (Microsoft Security Operations Analyst) or SC more »